30个可疑样本

显示全部楼层 · 发表于 2008-11-3 07:16:47

2008年11月3日早上收集的可疑样本30个
如果您的安全软件无法查杀,
请及时上报. 谢谢
其中:驱逐舰只查15个...已上报
点击下载2008年11月3日样本

显示全部楼层 · 发表于 2008-11-3 08:42:30

诺顿10.1

显示全部楼层 · 发表于 2008-11-3 08:45:04

he scan has been done completely.

   1 Scanning directories
   32 Files were scanned
   24 viruses and/or unwanted programs were found
   0 Files were classified as suspicious:
   24 files were deleted
   0 files were repaired
   24 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   8 Files not concerned
   1 Archives were scanned
   0 Warnings
   24 Notes

显示全部楼层 · 发表于 2008-11-3 10:19:00

  Total Command-Line Scanner Report
-------------------------------------------------------------------------
  Report for Jiangmin Command-Line Scanner :

  A0067107.EXE ----- TrojanSpy.OnLineGames.ibj
  A0067153.DLL ----- TrojanSpy.OnLineGames.ibk
  A0067156.DLL ----- Trojan/PSW.Zhengtu.dv
  A0067158.DLL ----- TrojanSpy.OnLineGames.iyg
  A0067159.DLL ----- TrojanSpy.OnLineGames.ixt
  A0067160.DLL ----- TrojanSpy.OnLineGames.iuy
  A0067161.DLL ----- TrojanSpy.OnLineGames.ipq
  A0067162.DLL ----- TrojanSpy.OnLineGames.jau
  A0067163.DLL ----- TrojanSpy.OnLineGames.iat
  A0067164.DLL ----- TrojanSpy.OnLineGames.iul
  A0067165.DLL ----- TrojanSpy.OnLineGames.jcn
  A0067168.DLL ----- TrojanSpy.OnLineGames.jcp
  A0067169.DLL ----- Trojan/Hijacker.bo
  A0067183.SYS ----- Rootkit.Agent.hj
  A0067184.SYS ----- Rootkit.Agent.hj
  A0067185.SYS ----- Rootkit.Agent.hj
  A0067234.DLL ----- TrojanSpy.OnLineGames.jcn
  A0067237.DLL ----- TrojanSpy.OnLineGames.jcp
  A0067240.SYS ----- Rootkit.Agent.hj
  A0067241.DLL ----- TrojanSpy.OnLineGames.jau
  ADSUP[1].DLL ----- TrojanDownloader.Agent.aqtm
  ADSUP[1q].DLL ----- TrojanDownloader.Agent.aqtm
  WMSETUP.DLL ----- TrojanDownloader.Agent.aqtm

  Jiangmin found 23 detections in 29 files.
-------------------------------------------------------------------------
  Task done @ 2008/11/03 һ 10:18:27.85

显示全部楼层 · 发表于 2008-11-3 10:22:49

  Total Command-Line Scanner Report
-------------------------------------------------------------------------
  Report for Kingsoft Command-Line Scanner :

  A0067107.EXE ----- Win32.Troj.OnlineGames.np.65536
  A0067153.DLL ----- Win32.Troj.OnlineGames.np.28672
  A0067156.DLL ----- Win32.Troj.OnlineGame.df.28672
  A0067158.DLL ----- Win32.Troj.OnlineGamesT.me.28672
  A0067159.DLL ----- Win32.Troj.OnlineGames.np.28672
  A0067160.DLL ----- Win32.Troj.OnlineGames.da.28672
  A0067161.DLL ----- Win32.PSWTroj.OnLineGames.24576
  A0067162.DLL ----- Win32.PSWTroj.OnLineGames.28672
  A0067163.DLL ----- Win32.Troj.OnlineGamesT.ba.24576
  A0067164.DLL ----- Win32.Troj.OnlineGames.np.24576
  A0067165.DLL ----- Win32.Troj.OnlineGames.np.24576
  A0067168.DLL ----- Win32.Troj.OnlineGamesT.me.28672
  A0067169.DLL ----- Win32.PSWTroj.Agent.28672
  A0067184.SYS ----- Win32.PSWTroj.Magania.16384
  A0067185.SYS ----- Win32.PSWTroj.Magania.6540
  A0067234.DLL ----- Win32.Troj.OnlineGames.np.24576
  A0067237.DLL ----- Win32.Troj.OnlineGamesT.me.28672
  A0067241.DLL ----- Win32.PSWTroj.OnLineGames.28672
  ADSUP[1].DLL ----- Win32.Troj.Unknown.131072
  ADSUP[1q].DLL ----- Win32.Troj.Unknown.131072
  WMSETUP.DLL ----- Win32.Troj.Unknown.131072

  Kingsoft found 21 detections in 29 files.
-------------------------------------------------------------------------
  Task done @ 2008/11/03 һ 10:22:26.93

显示全部楼层 · 发表于 2008-11-3 10:28:38

Multi Command-Line Scanner Report
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\A0067107.EXE
Type: UPX compressed Win32 Executable / Extension: .EXE
MD5 Hash: C177FC6B1F8F8B23E8783EFDF8560ADC

A-squared ----- Trojan-Spy.Win32.Treemz.A!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- Agent_r.L
Antivir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.OnlineGames.ZWU
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Wsgame.7823
Eset ----- probably a variant of Win32/PSW.OnLineGames.NXI trojan
Ikarus ----- Trojan-Spy.Win32.Treemz.A
Jiangmin ----- TrojanSpy.OnLineGames.ibj
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tpdc
Kingsoft ----- Win32.Troj.OnlineGames.np.65536
Vba32 ----- Trojan-GameThief.Win32.OnLineGames.tpdc

*** 12/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\A0067111.DLL
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: A32FE9DB089BEF3DCB06F283B772B045

A-squared ----- Nothing
Avast ----- Nothing
Avg ----- Nothing
Antivir ----- Nothing
BitDefender ----- Nothing
ClamWin ----- Nothing
Dr.Web ----- Nothing
Eset ----- Nothing
Ikarus ----- Nothing
Jiangmin ----- Nothing
Kaspersky ----- Nothing
Kingsoft ----- Nothing
Vba32 ----- Nothing

*** 0/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\A0067153.DLL
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: 57B6C3A73B11AB4ED9BE845E79B6BFB3

A-squared ----- Nothing
Avast ----- Win32:Trojan-gen {Other}
Avg ----- PSW.OnlineGames.BEPT
Antivir ----- TR/Spy.Gen
BitDefender ----- Trojan.Generic.827869
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Wsgame.7823
Eset ----- Win32/PSW.OnLineGames.NXI trojan
Ikarus ----- Nothing
Jiangmin ----- TrojanSpy.OnLineGames.ibk
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tpdc
Kingsoft ----- Win32.Troj.OnlineGames.np.28672
Vba32 ----- Trojan-GameThief.Win32.OnLineGames.tpdc

*** 10/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\A0067156.DLL
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: 7184C978C82422486843F235C2C79691

A-squared ----- Trojan-Spy.Win32.Treemz.A!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- PSW.OnlineGames.BFDH
Antivir ----- TR/Hijacker.Gen
BitDefender ----- Trojan.Generic.890619
ClamWin ----- Nothing
Dr.Web ----- Nothing
Eset ----- probably a variant of Win32/PSW.OnLineGames.NXI trojan
Ikarus ----- Trojan-Spy.Win32.Treemz.A
Jiangmin ----- Trojan/PSW.Zhengtu.dv
Kaspersky ----- Trojan-GameThief.Win32.Magania.aiyt
Kingsoft ----- Win32.Troj.OnlineGame.df.28672
Vba32 ----- Trojan-GameThief.Win32.Magania.aiwo

*** 11/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\A0067158.DLL
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: 89738C1549FF1216CA929C38C1A410E5

A-squared ----- Trojan-GameThief.Win32.OnLineGames!IK
Avast ----- Win32:Agent-ZRP [Trj]
Avg ----- Nothing
Antivir ----- TR/Hijacker.Gen
BitDefender ----- Trojan.OnLineGames.SIJX
ClamWin ----- Nothing
Dr.Web ----- Nothing
Eset ----- a variant of Win32/PSW.OnLineGames.NXI trojan
Ikarus ----- Trojan-GameThief.Win32.OnLineGames
Jiangmin ----- TrojanSpy.OnLineGames.iyg
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqlr
Kingsoft ----- Win32.Troj.OnlineGamesT.me.28672
Vba32 ----- Nothing

*** 9/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\A0067159.DLL
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: D610EEF48FFA3C2D60F816096D6E6850

A-squared ----- Trojan-Spy.Win32.Treemz.A!IK
Avast ----- Win32:Agent-ZRP [Trj]
Avg ----- Nothing
Antivir ----- TR/PSW.Online.tdy
BitDefender ----- Trojan.PWS.OnlineGames.ZQO
ClamWin ----- Nothing
Dr.Web ----- Nothing
Eset ----- a variant of Win32/PSW.OnLineGames.NXI trojan
Ikarus ----- Trojan-Spy.Win32.Treemz.A
Jiangmin ----- TrojanSpy.OnLineGames.ixt
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.trak
Kingsoft ----- Win32.Troj.OnlineGames.np.28672
Vba32 ----- Nothing

*** 9/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\A0067160.DLL
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: 253C1DD25A4CB55C7E8DC76C33E014F2

A-squared ----- Trojan-GameThief.Win32.OnLineGames!IK
Avast ----- Win32:Agent-ZRP [Trj]
Avg ----- PSW.Generic6.AMWP
Antivir ----- TR/Hijacker.Gen
BitDefender ----- Trojan.OnLineGames.SIJX
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Wsgame.8143
Eset ----- probably a variant of Win32/PSW.OnLineGames.NXI trojan
Ikarus ----- Trojan-GameThief.Win32.OnLineGames
Jiangmin ----- TrojanSpy.OnLineGames.iuy
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqcb
Kingsoft ----- Win32.Troj.OnlineGames.da.28672
Vba32 ----- Trojan-GameThief.Win32.OnLineGames.tqcb

*** 12/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\A0067161.DLL
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: 82FA3F7F7E9A03865D9CDDF357D34CB4

A-squared ----- Trojan-Spy.Win32.Treemz.A!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- PSW.Generic6.AMOK
Antivir ----- TR/Hijacker.Gen
BitDefender ----- Trojan.Generic.838015
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Wsgame.8127
Eset ----- Nothing
Ikarus ----- Trojan-Spy.Win32.Treemz.A
Jiangmin ----- TrojanSpy.OnLineGames.ipq
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tpxf
Kingsoft ----- Win32.PSWTroj.OnLineGames.24576
Vba32 ----- Trojan-GameThief.Win32.OnLineGames.tpxf

*** 11/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\A0067162.DLL
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: DFCFBCDA44112BE985A2828F26D199DF

A-squared ----- Trojan-Spy.Win32.Treemz.A!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- PSW.OnlineGames.BFEM
Antivir ----- TR/Hijacker.Gen
BitDefender ----- Trojan.Generic.878727
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Wsgame.8173
Eset ----- probably a variant of Win32/PSW.OnLineGames.NXI trojan
Ikarus ----- Trojan-Spy.Win32.Treemz.A
Jiangmin ----- TrojanSpy.OnLineGames.jau
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqlr
Kingsoft ----- Win32.PSWTroj.OnLineGames.28672
Vba32 ----- Nothing

*** 11/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\A0067163.DLL
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: B675F9B93A1D796CDBAD5427D01410A5

A-squared ----- Nothing
Avast ----- Win32:Agent-ZRH [Trj]
Avg ----- PSW.Generic6.ALZI
Antivir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.OnlineGames.ZQO
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Wsgame.8360
Eset ----- probably a variant of Win32/PSW.OnLineGames.NXR trojan
Ikarus ----- Nothing
Jiangmin ----- TrojanSpy.OnLineGames.iat
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tpkp
Kingsoft ----- Win32.Troj.OnlineGamesT.ba.24576
Vba32 ----- Trojan-GameThief.Win32.OnLineGames.tpkp

*** 10/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\A0067164.DLL
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: 67522B228D18FD7E137766BEE14660F4

A-squared ----- Virus.Win32.Agent.ZRP!IK
Avast ----- Win32:Agent-ZRP [Trj]
Avg ----- PSW.Generic6.AMQH
Antivir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.OnlineGames.ZQO
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Wsgame.8128
Eset ----- a variant of Win32/PSW.OnLineGames.NXL trojan
Ikarus ----- Virus.Win32.Agent.ZRP
Jiangmin ----- TrojanSpy.OnLineGames.iul
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tpym
Kingsoft ----- Win32.Troj.OnlineGames.np.24576
Vba32 ----- Trojan-GameThief.Win32.OnLineGames.tpym

*** 12/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\A0067165.DLL
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: 56F72B571FB813EB0E6B9401493E521D

A-squared ----- Nothing
Avast ----- Win32:Agent-ZRP [Trj]
Avg ----- PSW.Generic6.ANMG
Antivir ----- TR/Hijacker.Gen
BitDefender ----- Trojan.Generic.886289
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Wsgame.8171
Eset ----- probably a variant of Win32/PSW.OnLineGames.NXI trojan
Ikarus ----- Nothing
Jiangmin ----- TrojanSpy.OnLineGames.jcn
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqor
Kingsoft ----- Win32.Troj.OnlineGames.np.24576
Vba32 ----- Nothing

*** 9/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\A0067168.DLL
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: C03F029263E4D22C37EF5541BA76D62C

A-squared ----- Nothing
Avast ----- Win32:Agent-ZRP [Trj]
Avg ----- PSW.Generic6.ANME
Antivir ----- TR/Hijacker.Gen
BitDefender ----- Trojan.OnLineGames.SIJX
ClamWin ----- Nothing
Dr.Web ----- Nothing
Eset ----- a variant of Win32/PSW.OnLineGames.NXI trojan
Ikarus ----- Nothing
Jiangmin ----- TrojanSpy.OnLineGames.jcp
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqvq
Kingsoft ----- Win32.Troj.OnlineGamesT.me.28672
Vba32 ----- Nothing

*** 8/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\A0067169.DLL
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: 2FC786D923AC729242D16A3A56FFE240

A-squared ----- Trojan-Spy.Win32.Treemz.A!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- PSW.OnlineGames.BEHZ
Antivir ----- TR/Hijacker.Gen
BitDefender ----- Trojan.Generic.827126
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Wsgame.8230
Eset ----- probably a variant of Win32/PSW.OnLineGames.NPZ trojan
Ikarus ----- Trojan-Spy.Win32.Treemz.A
Jiangmin ----- Trojan/Hijacker.bo
Kaspersky ----- Nothing
Kingsoft ----- Win32.PSWTroj.Agent.28672
Vba32 ----- Nothing

*** 10/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\A0067183.SYS
Type: Clipper DOS Executable / Extension: .EXE
MD5 Hash: DA9D0876458EFC23F2C2F0C4FC6F9A55

A-squared ----- Trojan-GameThief.Win32.OnLineGames!IK
Avast ----- Win32:OnLineGames-FDQ [Trj]
Avg ----- PSW.Agent.VXY
Antivir ----- TR/PSW.OnlineGames.ZWI.3
BitDefender ----- Trojan.PWS.OnlineGames.ZWI
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Gamania.15176
Eset ----- a variant of Win32/PSW.Agent.NIM trojan
Ikarus ----- Trojan-GameThief.Win32.OnLineGames
Jiangmin ----- Rootkit.Agent.hj
Kaspersky ----- Trojan-GameThief.Win32.Magania.aiyh
Kingsoft ----- Nothing
Vba32 ----- Trojan-GameThief.Win32.Magania.aiyh

*** 11/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\A0067184.SYS
Type: Clipper DOS Executable / Extension: .EXE
MD5 Hash: FFC4F818ABD2242CB429F6FD785D2ECA

A-squared ----- Virus.Trojan.GameThief.Win32.Magania.ahzn!IK
Avast ----- Win32:Rootkit-gen [Rtk]
Avg ----- PSW.Agent.VUL
Antivir ----- TR/PSW.Magania.ahzn
BitDefender ----- Trojan.PWS.OnlineGames.ZWI
ClamWin ----- Nothing
Dr.Web ----- Trojan.NtRootKit.1600
Eset ----- Win32/PSW.Agent.NIM trojan
Ikarus ----- Virus.Trojan.GameThief.Win32.Magania.ahzn
Jiangmin ----- Rootkit.Agent.hj
Kaspersky ----- Trojan-GameThief.Win32.Magania.ahzn
Kingsoft ----- Win32.PSWTroj.Magania.16384
Vba32 ----- Trojan-GameThief.Win32.Magania.ahzn

*** 12/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\A0067185.SYS
Type: Clipper DOS Executable / Extension: .EXE
MD5 Hash: 9F1D1601E6EA948AF283AA9BFB911D2B

A-squared ----- Trojan.Thief.Magania.ainu!IK
Avast ----- Win32:Rootkit-gen [Rtk]
Avg ----- PSW.Agent.VVQ
Antivir ----- TR/Thief.Magania.ainu
BitDefender ----- Trojan.PWS.OnlineGames.ZWI
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Gamania.15176
Eset ----- Win32/PSW.Agent.NIM trojan
Ikarus ----- Trojan.Thief.Magania.ainu
Jiangmin ----- Rootkit.Agent.hj
Kaspersky ----- Trojan-GameThief.Win32.Magania.ainu
Kingsoft ----- Win32.PSWTroj.Magania.6540
Vba32 ----- Trojan-GameThief.Win32.Magania.ainu

*** 12/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\A0067204.DLL
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: A32FE9DB089BEF3DCB06F283B772B045

A-squared ----- Nothing
Avast ----- Nothing
Avg ----- Nothing
Antivir ----- Nothing
BitDefender ----- Nothing
ClamWin ----- Nothing
Dr.Web ----- Nothing
Eset ----- Nothing
Ikarus ----- Nothing
Jiangmin ----- Nothing
Kaspersky ----- Nothing
Kingsoft ----- Nothing
Vba32 ----- Nothing

*** 0/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\A0067234.DLL
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: 56F72B571FB813EB0E6B9401493E521D

A-squared ----- Nothing
Avast ----- Win32:Agent-ZRP [Trj]
Avg ----- PSW.Generic6.ANMG
Antivir ----- TR/Hijacker.Gen
BitDefender ----- Trojan.Generic.886289
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Wsgame.8171
Eset ----- probably a variant of Win32/PSW.OnLineGames.NXI trojan
Ikarus ----- Nothing
Jiangmin ----- TrojanSpy.OnLineGames.jcn
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqor
Kingsoft ----- Win32.Troj.OnlineGames.np.24576
Vba32 ----- Nothing

*** 9/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\A0067237.DLL
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: C03F029263E4D22C37EF5541BA76D62C

A-squared ----- Nothing
Avast ----- Win32:Agent-ZRP [Trj]
Avg ----- PSW.Generic6.ANME
Antivir ----- TR/Hijacker.Gen
BitDefender ----- Trojan.OnLineGames.SIJX
ClamWin ----- Nothing
Dr.Web ----- Nothing
Eset ----- a variant of Win32/PSW.OnLineGames.NXI trojan
Ikarus ----- Nothing
Jiangmin ----- TrojanSpy.OnLineGames.jcp
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqvq
Kingsoft ----- Win32.Troj.OnlineGamesT.me.28672
Vba32 ----- Nothing

*** 8/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\A0067240.SYS
Type: Clipper DOS Executable / Extension: .EXE
MD5 Hash: 8D31D126F1571000DCB82DA52A373B80

A-squared ----- Trojan-GameThief.Win32.OnLineGames!IK
Avast ----- Win32:OnLineGames-FDQ [Trj]
Avg ----- PSW.Agent.VYR
Antivir ----- TR/PSW.OnlineGames.tqwk
BitDefender ----- Trojan.PWS.OnlineGames.ZWI
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Wsgame.7643
Eset ----- a variant of Win32/PSW.Agent.NIM trojan
Ikarus ----- Trojan-GameThief.Win32.OnLineGames
Jiangmin ----- Rootkit.Agent.hj
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqwk
Kingsoft ----- Nothing
Vba32 ----- Nothing

*** 10/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\A0067241.DLL
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: DFCFBCDA44112BE985A2828F26D199DF

A-squared ----- Trojan-Spy.Win32.Treemz.A!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- PSW.OnlineGames.BFEM
Antivir ----- TR/Hijacker.Gen
BitDefender ----- Trojan.Generic.878727
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Wsgame.8173
Eset ----- probably a variant of Win32/PSW.OnLineGames.NXI trojan
Ikarus ----- Trojan-Spy.Win32.Treemz.A
Jiangmin ----- TrojanSpy.OnLineGames.jau
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqlr
Kingsoft ----- Win32.PSWTroj.OnLineGames.28672
Vba32 ----- Nothing

*** 11/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\A0068247.DLL
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: A32FE9DB089BEF3DCB06F283B772B045

A-squared ----- Nothing
Avast ----- Nothing
Avg ----- Nothing
Antivir ----- Nothing
BitDefender ----- Nothing
ClamWin ----- Nothing
Dr.Web ----- Nothing
Eset ----- Nothing
Ikarus ----- Nothing
Jiangmin ----- Nothing
Kaspersky ----- Nothing
Kingsoft ----- Nothing
Vba32 ----- Nothing

*** 0/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\A0068279.DLL
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: A32FE9DB089BEF3DCB06F283B772B045

A-squared ----- Nothing
Avast ----- Nothing
Avg ----- Nothing
Antivir ----- Nothing
BitDefender ----- Nothing
ClamWin ----- Nothing
Dr.Web ----- Nothing
Eset ----- Nothing
Ikarus ----- Nothing
Jiangmin ----- Nothing
Kaspersky ----- Nothing
Kingsoft ----- Nothing
Vba32 ----- Nothing

*** 0/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\ADSUP[1].DLL
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: F2E81C26C5F5DBD8794BA0D8BB9C342A

A-squared ----- Trojan.Crypt.XPACK!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- Downloader.Generic7.AQDI
Antivir ----- TR/Crypt.XPACK.Gen
BitDefender ----- Trojan.Downloader.Small.ABDO
ClamWin ----- Nothing
Dr.Web ----- DLOADER.Trojan
Eset ----- Nothing
Ikarus ----- Trojan.Crypt.XPACK
Jiangmin ----- TrojanDownloader.Agent.aqtm
Kaspersky ----- Nothing
Kingsoft ----- Win32.Troj.Unknown.131072
Vba32 ----- Nothing

*** 9/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\ADSUP[1q].DLL
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: F2E81C26C5F5DBD8794BA0D8BB9C342A

A-squared ----- Trojan.Crypt.XPACK!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- Downloader.Generic7.AQDI
Antivir ----- TR/Crypt.XPACK.Gen
BitDefender ----- Trojan.Downloader.Small.ABDO
ClamWin ----- Nothing
Dr.Web ----- DLOADER.Trojan
Eset ----- Nothing
Ikarus ----- Trojan.Crypt.XPACK
Jiangmin ----- TrojanDownloader.Agent.aqtm
Kaspersky ----- Nothing
Kingsoft ----- Win32.Troj.Unknown.131072
Vba32 ----- Nothing

*** 9/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\SYSMAIN.DLL
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: A32FE9DB089BEF3DCB06F283B772B045

A-squared ----- Nothing
Avast ----- Nothing
Avg ----- Nothing
Antivir ----- Nothing
BitDefender ----- Nothing
ClamWin ----- Nothing
Dr.Web ----- Nothing
Eset ----- Nothing
Ikarus ----- Nothing
Jiangmin ----- Nothing
Kaspersky ----- Nothing
Kingsoft ----- Nothing
Vba32 ----- Nothing

*** 0/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\WMSETUP.DLL
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: F2E81C26C5F5DBD8794BA0D8BB9C342A

A-squared ----- Trojan.Crypt.XPACK!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- Downloader.Generic7.AQDI
Antivir ----- TR/Crypt.XPACK.Gen
BitDefender ----- Trojan.Downloader.Small.ABDO
ClamWin ----- Nothing
Dr.Web ----- DLOADER.Trojan
Eset ----- Nothing
Ikarus ----- Trojan.Crypt.XPACK
Jiangmin ----- TrojanDownloader.Agent.aqtm
Kaspersky ----- Nothing
Kingsoft ----- Win32.Troj.Unknown.131072
Vba32 ----- Nothing

*** 9/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------

Task done @ 2008/11/03 һ 10:27:44.70

显示全部楼层 · 发表于 2008-11-3 10:51:11

eset 20

显示全部楼层 · 发表于 2008-11-3 11:20:08

微点拦截

显示全部楼层 · 发表于 2008-11-3 11:50:41

30个里费尔一共杀了29，而且剩下一个是自解压缩包，然后我看了下里面不含病毒，只是淘宝的广告，大家可以看下自解压缩包里的说明——“;下面的注释包含自解压脚本命令
Path=C:\WINDOWS\system32
SavePath
Silent=1
Overwrite=1
Shortcut=D, "淘宝网.lnk", "", "", "淘宝网"
Shortcut=P, "淘宝网.lnk", "", "", "淘宝网"
说明：这是淘宝网的解压包，内有一个网址和一个图标
共两个文件。它不是恶意软件。本解压包放在tasks目录
是为了制作时易于寻找及修改，别无他意。系统说明文档
已公开提到本系统含有淘宝网图标。
为避免误会，特作此说明。
”

显示全部楼层 · 发表于 2008-11-3 18:20:49

2008/11/3 18:18:49 已清除木马程序 Trojan-GameThief.Win32.OnLineGames.tqlr G:\Temp\Virus\30ge.rar/30ge\A0067241.DLL
2008/11/3 18:18:49 已清除木马程序 Trojan-GameThief.Win32.OnLineGames.tqwk G:\Temp\Virus\30ge.rar/30ge\A0067240.SYS
2008/11/3 18:18:49 已清除木马程序 Trojan-GameThief.Win32.OnLineGames.tqvq G:\Temp\Virus\30ge.rar/30ge\A0067237.DLL
2008/11/3 18:18:49 已清除木马程序 Trojan-GameThief.Win32.OnLineGames.tqor G:\Temp\Virus\30ge.rar/30ge\A0067234.DLL
2008/11/3 18:18:49 已清除木马程序 Trojan-GameThief.Win32.Magania.ainu G:\Temp\Virus\30ge.rar/30ge\A0067185.SYS
2008/11/3 18:18:49 已清除木马程序 Trojan-GameThief.Win32.Magania.ahzn G:\Temp\Virus\30ge.rar/30ge\A0067184.SYS
2008/11/3 18:18:49 已清除木马程序 Trojan-GameThief.Win32.Magania.aiyh G:\Temp\Virus\30ge.rar/30ge\A0067183.SYS
2008/11/3 18:18:49 已清除木马程序 Trojan-GameThief.Win32.OnLineGames.tqvq G:\Temp\Virus\30ge.rar/30ge\A0067168.DLL
2008/11/3 18:18:49 已清除木马程序 Trojan-GameThief.Win32.OnLineGames.tqor G:\Temp\Virus\30ge.rar/30ge\A0067165.DLL
2008/11/3 18:18:49 已清除木马程序 Trojan-GameThief.Win32.OnLineGames.tpym G:\Temp\Virus\30ge.rar/30ge\A0067164.DLL
2008/11/3 18:18:49 已清除木马程序 Trojan-GameThief.Win32.OnLineGames.tpkp G:\Temp\Virus\30ge.rar/30ge\A0067163.DLL
2008/11/3 18:18:49 已清除木马程序 Trojan-GameThief.Win32.OnLineGames.tqlr G:\Temp\Virus\30ge.rar/30ge\A0067162.DLL
2008/11/3 18:18:49 已清除木马程序 Trojan-GameThief.Win32.OnLineGames.tpxf G:\Temp\Virus\30ge.rar/30ge\A0067161.DLL
2008/11/3 18:18:49 已清除木马程序 Trojan-GameThief.Win32.OnLineGames.tqcb G:\Temp\Virus\30ge.rar/30ge\A0067160.DLL
2008/11/3 18:18:49 已清除木马程序 Trojan-GameThief.Win32.OnLineGames.trak G:\Temp\Virus\30ge.rar/30ge\A0067159.DLL
2008/11/3 18:18:49 已清除木马程序 Trojan-GameThief.Win32.OnLineGames.tqlr G:\Temp\Virus\30ge.rar/30ge\A0067158.DLL
2008/11/3 18:18:49 已清除木马程序 Trojan-GameThief.Win32.Magania.aiyt G:\Temp\Virus\30ge.rar/30ge\A0067156.DLL
2008/11/3 18:18:49 已清除木马程序 Trojan-GameThief.Win32.OnLineGames.tpdc G:\Temp\Virus\30ge.rar/30ge\A0067153.DLL
2008/11/3 18:18:49 已清除木马程序 Trojan-GameThief.Win32.OnLineGames.tpdc G:\Temp\Virus\30ge.rar/30ge\A0067107.EXE//#
2008/11/3 18:18:49 已清除木马程序 Trojan.Win32.Agent.ajgg G:\Temp\Virus\30ge.rar/30ge\A0067105.DLL//UPack

[病毒样本] 30个可疑样本

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

浏览过的版块